In
<[EMAIL PROTECTED]>,
on 04/04/2007
at 03:32 PM, Steven Conway <[EMAIL PROTECTED]> said:
>CA Top Secret supports member level security in a PDS or PDSE,
>allowing a variance of access authority to users of the dataset
>versus an individual member. We have that plugged in. A few months
>ago, there was a problem that led me to open an issue with Top
>Secret to verify what they do, and with another vendor to determine
>why their program hung on failed access at the member level.
The first question is what they mean by "supports member level
security in a PDS or PDSE." Are they talking about checking access
only on OPEN, or also on FIND and STOW? It would be trivial to
circumvent controls on FIND for PDS.
>The other vendor runs RACF, and today told me his RACF Admin says
>RACF does not support member level protection.
Correct; if you want to submit a requirement for that facility, spell
out in detail what you want protected.
--
Shmuel (Seymour J.) Metz, SysProg and JOAT
ISO position; see <http://patriot.net/~shmuel/resume/brief.html>
We don't care. We don't have to care, we're Congress.
(S877: The Shut up and Eat Your spam act of 2003)
----------------------------------------------------------------------
For IBM-MAIN subscribe / signoff / archive access instructions,
send email to [EMAIL PROTECTED] with the message: GET IBM-MAIN INFO
Search the archives at http://bama.ua.edu/archives/ibm-main.html
